As all the other users at FortiCloud must have gotten, I received an
announcement email per email account for 2FA auth enforcement starting
June the 7th.My question is if it would apply to this Forum login
account. I've kept using my old account emai...
When we configure this SSL VPN MAC address filtering, what system limit
would dictate the max number of MAC addresses we can configure on an FGT
(no
vdom/muti-vdom)?https://community.fortinet.com/t5/FortiGate/Technical-Tip-MAC-address-check-on-SSL-VP...
Please let me make sure the order a FGT examine policies.If there is a
specific policy from a specific interface like "lan" to another specific
interface like "wan1" with "any" source and "any" destination, it would
be examined before another policy ...
I'm referring two KBs below for this
issue:https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGate-alt-primary-alt-secondary-DNS-server/ta-p/275269https://community.fortinet.com/t5/FortiGate/Technical-Tip-Configuration-per-VDOM-DNS/ta-p/1...
We recently upgraded our FortiManager-VM from 7.0.8 to 7.2.4 and have
discovered the Meta Field we've been using to "plug" values per device
into CLI templates are not supported any more and have to migrate all
those per-device mappings from Device M...
Cisco 1000 Series ISR is NOT Meraki MX. Not sure how much FW feature it
covers while Cisco has Firepower FW product line. It's probably not
appropriate to discuss at this community. And now there is no FG40F in
place as you mentioned in your original...
You implied below:1. Already have an FMG in place and managing all FGTs
at HQ and branches.2. You use CLI templates at HQ FGT to manage/regulate
"important configuration".Then your objective is NOT to find out
locations where the important configurat...
I thought you originally showed a diagram. The network scheme you're
thinking probably wouldn't work well once the MX is in the picture and
that's why nobody seems to be willing to comment on your post.Either let
the MX side to provide failover/redun...
Probably this is beyond your employer's expectation and not sure what
kind of Forti-something you can have your hands on. But if you're really
new to this field/industry, I would suggest at least four areas you
should try focusing on:1. Layer2 switch...
Other part of OSPF network doesn't need to have routes for individual
host. As long as 192.168.0.0/24 is in the routing table, that router can
reach 192.168.0.136 and all other host in the /24 subnet.Besides,
"Redistribut static" in OSPF configuratio...